98 matches found
EUVD-2025-8572
Malicious code in bioql PyPI...
EUVD-2024-2486
Malicious code in bioql PyPI...
EUVD-2024-54438
Malicious code in bioql PyPI...
EUVD-2025-19022
Malicious code in bioql PyPI...
EUVD-2025-28040
Malicious code in bioql PyPI...
EUVD-2024-26170
Malicious code in bioql PyPI...
EUVD-2024-19861
Malicious code in bioql PyPI...
EUVD-2024-31364
Malicious code in bioql PyPI...
CVE-2025-60162 WordPress Job Board Manager Plugin <= 2.1.61 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Job Board Manager job-board-manager allows DOM-Based XSS.This issue affects Job Board Manager: from n/a through = 2.1.61...
CVE-2025-58265 WordPress Events Manager – OpenStreetMaps Plugin <= 4.2.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stonehenge Creations Events Manager – OpenStreetMaps stonehenge-em-osm allows Stored XSS.This issue affects Events Manager – OpenStreetMaps: from n/a through = 4.2.1...
CVE-2025-9035 Reflected XSS in Horato Internet Technologies' Virtual Library Platform
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Horato Internet Technologies Ind. And Trade Inc. Virtual Library Platform allows Reflected XSS. This issue affects Virtual Library Platform: before v202...
WordPress plugin Fusion Page Builder Extension Gallery 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A cross-site scriptin...
PT-2025-36810
Name of the Vulnerable Software and Affected Versions: HasTech ShopLentor versions through 3.2.0 Description: HasTech ShopLentor is susceptible to a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for stored XSS attacks...
CVE-2025-58195
Xpro Elementor Addons (WordPress plugin) vulnerability CVE-2025-58195 is a stored XSS caused by improper neutralization of input during web page generation, affecting versions up to 1.4.17. The issue is evidenced by multiple sources indicating affected software and the stored XSS nature, with rem...
CVE-2025-49891
CVE-2025-49891 is a SQL Injection vulnerability in the WordPress plugin Uxper Booking (uxper-booking) , allowing Blind SQL Injection. It affects versions up to and including 1.3.3 . The issue stems from improper neutralization of input in SQL commands, with CVSS 3.1 vector indicating network atta...
Linux Distros Unpatched Vulnerability : CVE-2025-3469
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is...
Remote Code Execution (RCE)
dolibarr/dolibarr is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper input handling caused by insecure mechanisms that allow arbitrary command execution and access to sensitive files on the file system...
Denial Of Service (DoS)
n8n is vulnerable to Denial of Service DoS. The vulnerability is due to improper input handling due to the /rest/binary-data endpoint failing to safely process empty filesystem:// or filesystem-v2:// URIs, leading to application instability or crashes...
CVE-2025-34073
Maltrail
CVE-2025-52733
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Anonform Ab ANON::form embedded secure form anonform-embedded-secure-form allows DOM-Based XSS.This issue affects ANON::form embedded secure form: from n/a through = 1.7...